saeed

Risk Analysis – Part 3

Qualitative risk analysis focuses on not producing detailed numbers directly related to actual monetary figures. Qualitative analysis is not as […]

Risk Analysis – Part 3 Read More »

Risk Analysis – Part 2

Basic

Risk is calculated for threat/vulnerability pairs. It appears simplistic and straightforward. However, calculating values can be challenging. There are important

Risk Analysis – Part 2 Read More »

What is MITRE ATT&CK?

Framework / ATTACK, MITRE

MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK)

What is MITRE ATT&CK? Read More »

CIS Controls

Framework / CIS, CIS CONTROLS

The Center for Internet Security (CIS), established in 2000, is a non-profit organization that develops configurable policy standards that enable

CIS Controls Read More »

What is SOC2

Framework / SOC2

SOC 2 is a framework that AICPA introduced.

What is SOC2 Read More »

Risk Assessment

Basic, Tutorial / Assessment, risk report

A risk assessment, a tool for risk management, identifies vulnerabilities and threats and assesses the possible impacts to determine where

Risk Assessment Read More »